Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/429506-cc55-4c7f-a756-416a61c3d234/1/5qXWlRxrOki6HP96ihWQVN4FkcQ.roa
File: 5qXWlRxrOki6HP96ihWQVN4FkcQ.roa (raw, json)
Hash identifier: hFEoDFVJK4WyY8eMUDrcWi7bdANb4qVuqXS+aoZWWhY=
Subject key identifier: E6:A5:D6:95:1C:6B:3A:48:BA:1C:FF:7A:8A:15:90:54:DE:05:91:C4
Certificate issuer: /CN=4ac5193d178a3ac7359c6e9cafcb3ca03129fd3a
Certificate serial: 014AD366
Authority key identifier: 4A:C5:19:3D:17:8A:3A:C7:35:9C:6E:9C:AF:CB:3C:A0:31:29:FD:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SsUZPReKOsc1nG6cr8s8oDEp_To.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/429506-cc55-4c7f-a756-416a61c3d234/1/5qXWlRxrOki6HP96ihWQVN4FkcQ.roa
Signing time: Sat 01 Jan 2022 05:57:10 +0000
ROA not before: Sat 01 Jan 2022 05:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47787
IP address blocks: 185.128.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21680998 (0x14ad366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ac5193d178a3ac7359c6e9cafcb3ca03129fd3a
Validity
Not Before: Jan 1 05:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6a5d6951c6b3a48ba1cff7a8a159054de0591c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0e:2a:5d:25:b6:74:b2:97:8f:93:2c:14:ad:
c1:f3:d4:69:d8:13:db:b2:53:d7:1d:c4:08:3d:1c:
e9:43:a9:86:fb:59:25:76:55:13:e1:e1:d5:16:0f:
50:03:04:00:cd:a1:ee:0d:ca:e7:53:fb:41:1d:de:
05:8e:42:7e:df:d6:2a:cf:e1:26:2e:ac:28:73:97:
12:be:1c:dd:cb:b4:c5:57:ca:4a:b2:72:3d:cb:67:
e3:a4:4d:1e:52:3d:5e:d5:d4:a4:b2:3c:0d:16:76:
40:43:bc:a3:23:51:9f:85:98:61:1f:36:e3:33:32:
9f:e3:b6:8e:31:5c:e7:1c:63:66:81:d3:6d:96:83:
56:68:03:42:61:59:35:d6:e0:b7:6e:34:16:ae:c4:
5f:b1:5b:55:1b:3b:c2:b9:07:ff:a7:a5:63:84:9e:
83:aa:0d:e7:dc:30:75:77:00:14:8b:59:1a:e1:03:
25:cb:1f:8c:8a:4e:b1:c7:46:48:bc:c9:46:87:5e:
84:33:d9:2c:fa:18:2f:88:5c:4f:d3:92:8e:f8:55:
bd:de:fe:88:58:fc:e1:f1:10:03:56:38:3e:f3:b8:
d5:b4:7e:30:96:f5:de:5f:0d:d5:e4:dd:6f:e9:0f:
4f:7a:99:8f:7a:06:4e:c5:69:db:7f:9c:d7:cc:a3:
86:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A5:D6:95:1C:6B:3A:48:BA:1C:FF:7A:8A:15:90:54:DE:05:91:C4
X509v3 Authority Key Identifier:
keyid:4A:C5:19:3D:17:8A:3A:C7:35:9C:6E:9C:AF:CB:3C:A0:31:29:FD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SsUZPReKOsc1nG6cr8s8oDEp_To.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/429506-cc55-4c7f-a756-416a61c3d234/1/5qXWlRxrOki6HP96ihWQVN4FkcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/429506-cc55-4c7f-a756-416a61c3d234/1/SsUZPReKOsc1nG6cr8s8oDEp_To.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.9.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e9:83:15:43:2f:0b:c9:95:49:b4:f2:09:40:92:6c:a1:88:
3d:24:cb:af:b5:e9:2f:17:10:f9:09:f2:3d:ae:5d:79:e9:e3:
ac:76:44:46:aa:00:6b:a3:ba:5a:84:81:83:6e:23:c0:05:7a:
2f:89:ca:f0:43:9d:4c:36:4a:8e:3c:2b:87:5e:da:2a:81:41:
a0:b4:72:68:40:45:39:53:e8:0c:fe:a8:04:eb:c6:8d:ee:6f:
75:79:56:ae:7f:54:77:5b:2b:d4:8c:68:70:e5:c4:f2:28:09:
c4:29:1c:d5:e7:36:9b:58:e8:f7:c2:a4:5d:2d:bb:9a:aa:68:
96:3e:63:72:b1:03:0f:46:0d:c3:e0:c6:c0:86:56:f0:a7:0a:
77:0a:83:03:79:e8:11:ac:90:f4:5e:1c:7e:44:cd:d7:16:d1:
01:75:19:8e:55:b9:b9:ce:6d:28:b4:8e:6f:c3:56:e5:59:7c:
ff:b4:b7:63:e9:2a:4b:64:2c:e2:0b:29:4c:bb:f9:03:05:f1:
97:21:78:36:3f:84:c9:a2:7d:e2:ae:ad:ae:fe:ec:9d:9e:d1:
5d:eb:73:ae:6c:94:e0:c0:0c:bc:d9:61:e0:03:d6:0c:64:c6:
e3:05:e3:2c:9f:f6:b3:c9:24:0a:a1:3a:ca:1f:36:a0:77:7d:
ba:9e:4e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:09:29 2025 by rpki-client